Securing SQL Server

6. SQL Injection Attacks

Information in this Chapter

•Why Are SQL Injection Attacks So Successful?

•How to Protect Yourself from an SQL Injection Attack

•Cleaning Up the Database after an SQL Injection Attack

This chapter talks about what an SQL Injection Attack is and how to protect yourself from one.

What is an SQL Injection Attack?

An SQL Injection Attack is probably the easiest attack to prevent, while being one of the least protected against forms of attack. The core of the attack is that an SQL command is appended to the back end of a form field in the web or application front end (usually through a website), with the intent of breaking the original SQL Script and then running the SQL script that was injected into ...

Get Securing SQL Server now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Securing SQL Server by Denny Cherry

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly